Re: weak repository key

To: debian-user@lists.debian.org
Subject: Re: weak repository key
From: Jochen Spieker <ml@well-adjusted.de>
Date: Thu, 17 Mar 2016 16:54:57 +0100
Message-id: <[🔎] 20160317155456.GL20821@well-adjusted.de>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] op.yeg7p2du5k9y7g@jessica.jkfloris.demon.nl>
References: <[🔎] op.yeg7p2du5k9y7g@jessica.jkfloris.demon.nl>

Floris:
> After updating to apt version 1.2.7 I get a warning on apt-get update:
> W: gpgv:/var/lib/apt/lists/partial/dl.google.com_linux_chrome_deb_dists_stable_Release.gpg:
> The repository is insufficiently signed by key
> 4CCA1EAF950CEE4AB83976DCA040830F7FAC5991 (weak digest)
> 
> and the repository is ignored
> 
> Is there a way that apt re-trust the old SHA1 key, or do we have to report
> this to Google and all other repos?

Report it:
https://lists.debian.org/debian-devel-announce/2016/03/msg00006.html

J.
-- 
My drug of choice is self-pity.
[Agree]   [Disagree]
                 <http://archive.slowlydownward.com/NODATA/data_enter2.html>

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: weak repository key
  - From: Sven Hartge <sven@svenhartge.de>

References:
- weak repository key
  - From: Floris <jkfloris@dds.nl>

Prev by Date: weak repository key
Next by Date: Re: Sound problems
Previous by thread: weak repository key
Next by thread: Re: weak repository key
Index(es):
- Date
- Thread